42.4.126.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Port Scan: TCP/23	2019-09-10 18:51:17

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.4.126.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59628
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.4.126.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 18:51:12 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 20.126.4.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 20.126.4.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.92.108.211	attackbotsspam	DATE:2020-05-28 11:58:18, IP:85.92.108.211, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-28 19:54:15
222.186.175.163	attack	Brute-force attempt banned	2020-05-28 20:09:51
203.130.192.242	attack	May 28 04:56:14 mockhub sshd[19164]: Failed password for root from 203.130.192.242 port 45813 ssh2 May 28 05:04:14 mockhub sshd[19501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 ...	2020-05-28 20:11:57
177.43.236.178	attackbotsspam	2020-05-28T04:56:35.244672linuxbox-skyline sshd[114100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 user=root 2020-05-28T04:56:37.319267linuxbox-skyline sshd[114100]: Failed password for root from 177.43.236.178 port 32810 ssh2 ...	2020-05-28 19:50:03
222.186.175.23	attackbots	May 28 16:50:42 gw1 sshd[17715]: Failed password for root from 222.186.175.23 port 58736 ssh2 ...	2020-05-28 19:52:06
117.50.3.192	attack	Lines containing failures of 117.50.3.192 May 25 10:25:57 ml postfix/smtpd[22776]: connect from betaworldtargeting.info[117.50.3.192] May 25 10:25:58 ml postfix/smtpd[22776]: Anonymous TLS connection established from betaworldtargeting.info[117.50.3.192]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) May x@x May 25 10:25:59 ml postfix/smtpd[22776]: disconnect from betaworldtargeting.info[117.50.3.192] ehlo=2 starttls=1 mail=1 rcpt=0/1 quhostname=1 commands=5/6 May 27 09:34:21 ml postfix/smtpd[20004]: connect from betaworldtargeting.info[117.50.3.192] May 27 09:34:22 ml postfix/smtpd[20004]: Anonymous TLS connection established from betaworldtargeting.info[117.50.3.192]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) May 27 09:34:23 ml postfix/smtpd[20004]: 6B28D406F23D: client=betaworldtargeting.info[117.50.3.192] May 27 09:34:24 ml postfix/smtpd[20004]: disconnect from betaworldtargeting.info[117.50.3.192] ehlo=2 ........ ------------------------------	2020-05-28 20:27:02
64.225.47.162	attackbotsspam	May 28 09:00:10 firewall sshd[4808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.47.162 user=root May 28 09:00:12 firewall sshd[4808]: Failed password for root from 64.225.47.162 port 47010 ssh2 May 28 09:03:55 firewall sshd[4876]: Invalid user guest1 from 64.225.47.162 ...	2020-05-28 20:24:43
65.50.209.87	attackspam	Invalid user yjv from 65.50.209.87 port 50230	2020-05-28 19:55:43
120.53.24.140	attack	Invalid user matthew from 120.53.24.140 port 55412	2020-05-28 19:56:57
138.121.120.254	attackbots	Failed password for invalid user prometheus from 138.121.120.254 port 59081 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=abr.smartinternet.com.br user=root Failed password for root from 138.121.120.254 port 33270 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=abr.smartinternet.com.br user=root Failed password for root from 138.121.120.254 port 35701 ssh2	2020-05-28 20:26:40
156.96.155.239	attack	Port Scan detected! ...	2020-05-28 20:32:01
106.12.182.38	attackbots	May 28 13:57:23 h1745522 sshd[5718]: Invalid user admin from 106.12.182.38 port 37550 May 28 13:57:23 h1745522 sshd[5718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.182.38 May 28 13:57:23 h1745522 sshd[5718]: Invalid user admin from 106.12.182.38 port 37550 May 28 13:57:26 h1745522 sshd[5718]: Failed password for invalid user admin from 106.12.182.38 port 37550 ssh2 May 28 14:00:44 h1745522 sshd[5842]: Invalid user ubnt from 106.12.182.38 port 45046 May 28 14:00:44 h1745522 sshd[5842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.182.38 May 28 14:00:44 h1745522 sshd[5842]: Invalid user ubnt from 106.12.182.38 port 45046 May 28 14:00:45 h1745522 sshd[5842]: Failed password for invalid user ubnt from 106.12.182.38 port 45046 ssh2 May 28 14:03:56 h1745522 sshd[5974]: Invalid user admin from 106.12.182.38 port 52556 ...	2020-05-28 20:21:56
182.23.67.49	attackbotsspam	May 28 06:33:38 vps687878 sshd\[7651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.67.49 user=root May 28 06:33:40 vps687878 sshd\[7651\]: Failed password for root from 182.23.67.49 port 60212 ssh2 May 28 06:39:35 vps687878 sshd\[8277\]: Invalid user wyji from 182.23.67.49 port 44510 May 28 06:39:35 vps687878 sshd\[8277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.67.49 May 28 06:39:36 vps687878 sshd\[8277\]: Failed password for invalid user wyji from 182.23.67.49 port 44510 ssh2 ...	2020-05-28 19:56:37
113.163.105.3	attack	20/5/28@00:31:49: FAIL: Alarm-Network address from=113.163.105.3 ...	2020-05-28 20:06:37
152.136.45.81	attack	May 28 15:04:25 lukav-desktop sshd\[12334\]: Invalid user 1976 from 152.136.45.81 May 28 15:04:25 lukav-desktop sshd\[12334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.45.81 May 28 15:04:27 lukav-desktop sshd\[12334\]: Failed password for invalid user 1976 from 152.136.45.81 port 45062 ssh2 May 28 15:09:15 lukav-desktop sshd\[22406\]: Invalid user emmalynn from 152.136.45.81 May 28 15:09:15 lukav-desktop sshd\[22406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.45.81	2020-05-28 20:12:21

最近上报的IP列表

82.202.173.27	221.174.57.213	20.230.56.78	147.212.196.87
73.12.231.210	72.255.99.162	245.65.102.135	67.198.184.202
64.146.156.141	64.90.3.202	63.245.58.173	35.242.211.63
1.85.61.8	172.221.81.153	209.77.65.82	201.20.83.209
103.177.137.133	200.26.194.161	197.51.129.126	190.88.136.8